Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/7IDWuY26T4UCJ4M5vwbNefIa4Ds.roa
File: 7IDWuY26T4UCJ4M5vwbNefIa4Ds.roa (raw, json)
Hash identifier: 2aXs1iZiP1C/zRertFgP1ov5IhcFnyEWbQzgQUvTZx0=
Subject key identifier: EC:80:D6:B9:8D:BA:4F:85:02:27:83:39:BF:06:CD:79:F2:1A:E0:3B
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 019CF6F1D61C0666D45B4E23366197D6F713
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/7IDWuY26T4UCJ4M5vwbNefIa4Ds.roa
Signing time: Mon 16 Mar 2026 13:59:29 +0000
ROA not before: Mon 16 Mar 2026 13:59:29 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 213220
IP address blocks: 80.66.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 22 Mar 2026 11:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f6:f1:d6:1c:06:66:d4:5b:4e:23:36:61:97:d6:f7:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Mar 16 13:59:29 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=ec80d6b98dba4f8502278339bf06cd79f21ae03b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3a:6c:b9:15:05:90:65:b1:40:b3:fd:e6:68:
88:cb:48:a7:5f:3f:b1:00:c4:8f:9d:49:94:de:f8:
20:0b:e9:90:4b:fe:3c:e6:13:57:57:25:a1:90:98:
a5:db:30:92:57:6a:7f:ff:09:0a:05:43:fd:86:0d:
b7:50:ad:ae:ba:f5:da:07:7c:59:d6:48:32:c6:a2:
69:79:b2:13:ca:f5:9b:3a:ab:ab:38:91:01:08:fc:
fa:3e:07:bb:d6:34:6e:99:77:8e:7f:8d:d2:6b:5e:
1e:42:43:63:83:08:f7:c2:1b:c5:f5:89:a1:34:b5:
98:ea:ea:a1:c8:e7:b6:9b:b1:46:f7:5c:3e:6d:cd:
ba:2b:52:15:11:d0:0f:8a:a6:ce:cf:e5:4a:8e:40:
63:9d:4f:19:07:5d:1f:5c:38:b9:c3:d1:48:a4:60:
b3:61:cd:a1:0b:d1:56:63:10:e2:d2:ca:04:63:a5:
b3:38:af:b3:7a:41:63:89:a7:46:6d:19:f1:ee:2a:
38:1d:5c:ab:51:f2:f2:27:f5:26:ef:7a:7c:54:ad:
33:d9:af:fa:02:21:db:19:d1:d8:26:dc:0a:f7:6a:
ee:b6:14:73:17:9a:bb:75:ac:22:03:ae:f2:4e:7a:
ce:ac:f4:dc:03:bf:f0:0a:69:eb:a1:20:c9:26:fd:
57:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:80:D6:B9:8D:BA:4F:85:02:27:83:39:BF:06:CD:79:F2:1A:E0:3B
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/7IDWuY26T4UCJ4M5vwbNefIa4Ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.65.0/24
Signature Algorithm: sha256WithRSAEncryption
54:72:c1:72:e3:a6:38:5d:a1:21:6c:47:23:82:62:2f:41:09:
9e:0f:57:e3:19:57:8f:82:fd:d0:1f:ba:e4:e3:7a:76:a7:89:
42:57:cb:cf:be:2c:e8:1c:df:4e:e8:30:cf:86:83:fc:27:36:
e4:28:d4:3c:28:56:66:32:18:5c:03:bb:e8:e7:ef:d7:74:6c:
63:09:6a:fa:03:9d:d6:f0:49:f3:60:de:06:8b:c9:2c:9e:16:
a0:e7:39:58:1c:96:71:43:a0:2a:04:09:34:67:49:c4:f4:e0:
97:89:05:e2:4c:8f:db:02:5b:f8:7e:c3:65:00:e8:30:f6:25:
e3:2a:7a:86:be:8d:a6:f7:82:ba:ad:02:1d:5e:f5:b3:33:73:
26:d8:d0:72:86:05:78:b7:f5:ca:bd:bb:70:b4:52:c5:57:e9:
71:6a:97:9c:a8:5f:3c:09:be:c0:79:05:82:11:9e:f3:5f:56:
5e:e8:7b:34:c0:40:3a:08:cf:7d:55:26:59:f0:02:21:5f:69:
ba:04:88:ba:97:e4:d9:3f:ab:16:c1:35:45:1c:d7:08:10:d6:
17:79:2e:70:9b:7b:32:c0:83:89:f8:05:06:bc:bc:96:f3:b6:
81:9b:be:c1:ca:52:78:f7:25:64:d1:1b:4a:99:19:c3:01:58:
5c:a3:b1:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 21 17:16:06 2026 by rpki-client